Who we are
Safestore Group plc. trading in Spain as OhMyBox!. is the operator of the website www.ohmybox.es. We collect, use and are responsible for certain information about you. When we do so, we are regulated under the General Data Protection Regulation which applies across the European Union (including Spain and the United Kingdom) and we are responsible as 'controller' of that personal information for the purposes of those laws. We have a designated privacy officer who is responsible for how we handle personal information. Please find their contact information in our How to contact us section.
Personal information provided by you
Personal information we collect and use
In the course of operating our self storage business, we collect personal information when you provide it to us, such as your name, email address, phone number(s), date of birth, personal identification such as a driving license and utilities statement which includes your postal address.
Personal information provided by third parties
Occasionally we may receive information about you from other sources (such as credit reference agencies), which we will add to the information we already hold about you in order to help us provide services to you and to improve and personalise our service to you.
Personal information about other individuals
If you give us information on behalf of someone else as an alternate contact, referee or next of kin, you confirm that the other person has agreed that you can:
Sensitive personal information
- Give consent on his/her behalf to the processing of his/her personal data;
- Receive on his/her behalf any data protection notices
We will not usually ask you to provide sensitive personal information. We will only ask you to provide sensitive personal information if we need to for a specific reason, for example, if we believe you are having difficulty dealing with your account due to illness. If we request such information, we will explain why we are requesting it and how we intend to use it.
Sensitive personal information includes information relating to your ethnic origin, political opinions, religious beliefs, whether you belong to a trade union, your physical or mental health or condition, sexual life, and whether you have committed a criminal offence. We will only collect your sensitive personal information with your explicit consent and you can ask us to delete this at any time.
We do not knowingly collect personal data relating to children under the age of 16. If you are a parent or guardian of a child under the age of 16 and think that we may have information relating to that child, please contact us. We will ask you to prove your relationship to the child but if you do so you may (subject to applicable law) request access to and deletion of that child’s personal data.
How and when do we collect information from you?
We also collect personal information when you contact us using website forms.
We may monitor and record communications with you (such as telephone conversations and emails). We may do this for a number of reasons, such as to check the quality of our customer service, for training purposes, to prevent fraud or to make sure we are complying with legal requirements.
If you visit our storage facility, some personal data may be collected from monitoring devices and systems such as closed circuit TV (CCTV) and door entry systems at the site.
You can set your browser not to accept cookies, however, some of our website features may not function as a result.
For further information on cookies generally you may visit www.allaboutcookies.org.
Reasons we can collect and use your personal information
We rely on a different lawful basis for collecting and using personal data in different situations.
Where you make enquiries about storing with us before you become a customer, we need to collect personal information about you so that we can take steps to enter into a contract with you. Once you have become a customer, we need to collect and use personal information to provide services to you and to claim our right to be paid in return for our services under our standard terms of business/contract with you. This includes collecting and using your personal information to:
Job applications and recruitment
- Enable us to follow up on enquiries made by you in relation to storing with us in accordance with industry guidelines and to give you our quote;
- Do a credit check—see 'Credit checking' section below;
- Prepare a storage agreement with you and arrange insurance cover if required;
- Manage any accounts you hold with us;
- Contact you for reasons related to the service you have signed up for or to provide information you have requested;
- Deal with payment for our services;
- Notify you of any changes to our website or to our services that may affect you; and
- Resolve disputes or collect overdue payments.
We collect and use personal information from our customers to comply with our legal obligations. For example, we will take copies of documents that identify you so that we can comply with anti-money laundering and counter-terrorist financing requirements.
Legitimate business interests
We may collect and process your personal information for our legitimate business interests. Examples of this are detailed below.
Our priority is to make sure we give a high quality and secure service to customers and to follow up effectively on enquiries even though we accept that not all enquiries will lead to a business relationship or contract.
We collect personal information to:
- Follow up on enquiries in accordance with industry guidelines and provide quotes for storage or details of offers;
- Conduct research and analyse website visitor behaviour patterns;
- Customise our website and its content to your particular preferences;
- Improve our services;
- Detect and prevent fraud;
- Prevent offensive, inappropriate or objectionable content being sent to or posted on our websites or to stop any other form of disruptive behaviour.
- It is a key feature of our storage service that we operate CCTV within the storage facility. We collect and process CCTV images
- so we can fulfil our contractual obligation to deliver a secure self storage environment;
- to establish whether you are doing something that breaches your contract with us; and
- to assist in the establishment or defence of any crime or other investigation.
- to avoid customer exposure from unnecessary marketing (see 'Customer Insight & Marketing' below)
Customer Insight & Marketing
We may pass some limited information to third party data processors (Google, LiveRamp and Facebook) to reduce customer exposure to unnecessary marketing from OhMyBox! which is processed in accordance with privacy regulations and then permanently deleted.
If you do not wish for OhMyBox! to pass your data to third party data processors in order to remove you from seeing further marketing, you can send a request to email@example.com.
Please allow 48 hours for this request to be successfully administered.
Please note: If you choose to do this, you will continue to see OhMyBox! marketing even if you are already a customer.
We may do a credit check on you so that we can make credit decisions about you and people or businesses associated with you. These checks may also be used to help prevent and detect fraud and money laundering.
Our search will be recorded on the files of the credit reference agency.
We may also disclose information about how you conduct your account to credit reference agencies and your information may be linked to records relating to other people living at the same address or who are financially linked to you.
Other credit businesses may use your information to make credit decisions about you and the people with whom you are financially associated, trace debtors, and prevent and detect fraud and money laundering.
If you provide false or inaccurate information to us and we suspect fraud, we will record this.
We may also communicate with you by SMS text or email, information about other services we can offer you and update you about our activities and promotions which may be of interest to you unless you have chosen to opt out of receiving these marketing communications.
OhMyBox! reserve the right to send marketing emails or text messages about OhMyBox! services to persons who have provided contact details in the course of enquiring for a storage quote on this website.
If you would not like to receive such communications, you can at any time:
Click on the “unsubscribe” button at the bottom of one of our marketing emails to you.
Email us an unsubscription request to firstname.lastname@example.org. It may take up to 48 hours for this to take place.
When completing an online quote request, tick the check box where prompted to opt out of marketing communications.
See 'What rights do you have?’ below for further information.
If you ask us to stop contacting you in this way, you can also ask us to start again at any time.
If we propose to use your information for any other uses we will ensure that we notify you first. If we need your consent to use your information for these other purposes, we will give you the opportunity to opt in or to refuse. If you opt in, you will be able to opt out at any time.
When will we contact any other person about you?
If you provide us with details of any other person we can contact to discuss your account, we may contact that person and discuss and share the details of your account with that person and deal with that person in relation to your account as if that person was you. We may particularly want to do this if we are unable to get in touch with you for any reason. If you change your mind, you can email or write to us and have this person taken off your account as an alternate contact person (see ‘How can you contact us?’ below).
If you provide us the details of a person who we can contact for a job reference, we may contact that person in connection with your job application.
Who your information might be shared with
We may disclose your personal data to:
Keeping your personal information secure
- Service providers under contract with us to support our business operations, such as fraud prevention, debt collection, payroll, technology services
- Credit reference agents—see 'Credit checking' above;
- Our insurers and insurance brokers if you take out insurance cover through us;
- Trade associations of which we are a member;
- Law enforcement or government agencies in connection with any investigation to help prevent or detect unlawful activity;
- Any person or agency if we need to share that information to comply with the law or to enforce any agreement we may have with you or to protect the health and safety of any person;
- Any person who you have named as a person we can contact to discuss your account;
- Any person who is your agent or representative, such as the holder of a power of attorney, a legal guardian or person administering a will;
- Any person who we are negotiating with as a potential buyer of our business or property or if we are proposing to merge our business with another business;
- Credit card associations if specifically required;
- If we pass data on to insurers, they may enter your data onto a register of claims which is shared with other insurers to prevent fraudulent claims. If we use an outside party to process your information, we will require them to comply with our instructions in connection with the services they provide for us and not for their own business purposes.
We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those people processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We will use technical measures to safeguard your personal data, for example:
- access to your customer account is controlled by a password and user name that are unique to you;
- we store your personal data on secure servers; and
- payment details are encrypted on the secure server
We have procedures in place to deal with any suspected data security breach. We will notify you and any applicable supervisory body of a suspected data breach where we are legally required to do so.
While we will use all reasonable efforts to keep your personal data safe, you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data that is transferred from you or to you via the internet. If you have any particular concerns about your information, please contact us.
Our website contains links to websites and applications owned and operated by other people and businesses. These third party sites have their own privacy policies and use their own cookies and we recommend that you review them before you provide them with personal information. They will tell you how your personal information is collected and used whilst you are visiting these other websites. We do not accept any responsibility or liability for the content of these sites or the use of your information collected by any of these other sites and you use these other sites at your own risk.
If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.
Transfers of your personal information out of the European Economic Area (EEA)
We will not transfer your personal data outside of the EEA or to any organisation (or subordinate bodies) governed by public international law or which is set up under any agreement between two or more countries.
How long do we keep your personal information?
We will usually hold your personal information as a customer for the period we are required to retain this information by applicable UK law, currently 6 years from the end of our contract, unless you have told us you want us to delete the information earlier (see section “What rights do you have” below).
We keep personal information provided during a storage quote for as long as necessary for analytical and also direct marketing purposes (unless you have opted out).
What rights do you have?
Under the General Data Protection Regulation you have a number of important rights. These include the following rights:
- Request a copy of your information which we hold (subject access request);
- Require us to correct any mistakes in your information which we hold;
- Require the erasure of personal information concerning you in certain Require us to stop contacting you for direct marketing purposes;
- Object in certain other situations to our continued processing of your personal information;
- Restrict our processing of your personal information in certain circumstances;
- Object to decisions being taken by automated means which produce legal effects concerning you or which affect you significantly; and
- Receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations.
Further information on each of these rights is available from the Information Commissioner’s Office.
If you would like to exercise any of these rights, please:
- Email, call or write to us (see ‘How to contact us’ below)
- Let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and
- Let us know the information to which your request relates, including any account or reference numbers, if you have them
(We will not charge any fee for any of these services in most cases.)
How to contact us
We hope that we can resolve any query or concern you raise about the way we use your personal information.
If you wish to contact us, please send an email to PrivacyOfficer@safestore.co.uk or write to us at OhMyBox! c/o Safestore Limited, Brittanic House, Stirling Way, Borehamwood, Hertfordshire, United Kingdom, WD6 2BT
The General data Protection Regulation also gives you the right to lodge a complaint with a supervisory authority.
This Privacy Notice was published on 28/02/2015 and last updated on 01/03/2021. We may change this Privacy Notice from time to time. You should check this policy occasionally to ensure you are aware of the most recent version.